<!--
Copyright 2004 - 2013 Wayne Grant
          2013 - 2017 Kai Kramer

This file is part of KeyStore Explorer.

KeyStore Explorer is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.

KeyStore Explorer is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
GNU General Public License for more details.

You should have received a copy of the GNU General Public License
along with KeyStore Explorer.  If not, see <http://www.gnu.org/licenses/>.
-->
<html>
    <head>
        <title>Get a Key Pair Signed by a CA</title>
        <link rel=stylesheet href="help.css" type="text/css">
    </head>

    <body>

        <h1>Get a Key Pair Signed by a CA (Certificate Authority)</h1>
        <hr>

        To get a Key Pair signed by a CA:

        <ol>

            <li>First <a href="createNewKeyStore.html">create a new KeyStore</a>.</li>

            <br>

            <li>Either <a href="importKeyPairPkcs12.html">import an existing Key Pair</a>
                into the KeyStore or <a href="generateKeyPair.html">generate a new Key Pair</a>
                in the KeyStore.</li>

            <br>

            <li>Next <a href="generateCsr.html">generate a CSR</a> (Certificate Signing Request)
                file from the Key Pair.</li>

            <br>

            <li>Send the CSR file to a CA for signing.  Each CA has different
                procedures for signing certificates and will charge a fee.  Check the CA's web site
                for details.</li>

            <br>

            <li>The CA will send back a CA Reply.  This will most likely take the form of
                a file with the extension p7r or cer.</li>

            <br>

            <li><a href="importCaReply.html">Import the CA Reply</a> into the original Key Pair.</li>

            <br>

            <li>The Key Pair has now been signed by the CA.
                <a href="viewKeyPairCertificateChain.html">View the Key Pair's certificate chain</a>.
                Your certificate, at the end of the chain, will contain the CA's details in the
                issuer field.</li>

            <br>

            <li>Finally <a href="saveKeyStore.html">save the KeyStore</a>.</li>

        </ol>

        <hr>

        <center><small>Copyright 2004 - 2013 Wayne Grant, 2013 - 2017 Kai Kramer</small></center>

    </body>
</html>
